mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-06-29 17:13:38 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
96973ede702d419fc65e1b1b73d424562ff03062
poky/meta/recipes-core
History
Peter Marko bedb86690f glib-2.0: ignore CVE-2025-4056 
NVD report [1] says:
A flaw was found in GLib. A denial of service on **Windows platforms**
may occur if an application attempts to spawn a program using long
command lines.

The fix [3] (linked from [2]) also changes only files
glib/gspawn-win32-helper.c
glib/gspawn-win32.c

[1] https://nvd.nist.gov/vuln/detail/CVE-2025-4056
[2] https://gitlab.gnome.org/GNOME/glib/-/issues/3668
[3] https://gitlab.gnome.org/GNOME/glib/-/merge_requests/4570

(From OE-Core rev: 8c69793deb78cf9718801825477938c22e229eca)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-08-22 07:07:19 -07:00
..
base-files
base-files: Drop localhost.localdomain from hosts file
2023-03-23 22:45:34 +00:00
base-passwd
base-passwd: Add the sgx group
2024-12-20 06:01:45 -08:00
busybox
busybox: fix CVE-2023-39810
2025-05-14 06:38:22 -07:00
coreutils
coreutils: fix CVE-2025-5278
2025-07-18 08:32:26 -07:00
dbus
dbus: disable assertions and enable only modular tests
2024-12-16 05:58:03 -08:00
dbus-wait
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
dropbear
dropbear: patch CVE-2025-47203
2025-08-04 06:40:00 -07:00
ell
ell: upgrade 0.49 -> 0.50
2022-08-28 07:51:29 +01:00
expat
expat: patch CVE-2024-50602
2024-11-15 06:05:32 -08:00
fts
recipes: Update github.com urls to use https
2021-11-03 10:12:42 +00:00
gettext
gettext: add MIT conditional as license
2022-04-14 09:47:00 +01:00
glib-2.0
glib-2.0: ignore CVE-2025-4056
2025-08-22 07:07:19 -07:00
glib-networking
glib-networking: upgrade 2.72.1 -> 2.72.2
2022-08-31 16:54:17 +01:00
glibc
glibc: stable 2.35 branch updates
2025-08-08 06:30:56 -07:00
ifupdown
ifupdown: upgrade 0.8.37 -> 0.8.39
2022-11-09 17:42:08 +00:00
images
build-appliance-image: Update to kirkstone head revision
2025-08-08 06:32:44 -07:00
init-ifupdown
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
initrdscripts
udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
2022-07-25 15:11:46 +01:00
initscripts
initscripts: Add custom mount args for /var/lib
2024-05-29 05:24:08 -07:00
kbd
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
libcgroup
libcgroup: upgrade 2.0.1 -> 2.0.2
2022-05-28 10:38:17 +01:00
libxcrypt
libxcrypt-compat: Remove libcrypt.so to fix conflict with libcrypt
2025-03-27 08:16:30 -07:00
libxml
libxml2: patch CVE-2025-6170
2025-08-04 06:40:00 -07:00
meta
Revert "cve-update-nvd2-native: Tweak to work better with NFS DL_DIR"
2025-05-02 08:12:41 -07:00
musl
gcompat: Fix build when usrmerge distro feature is enabled
2022-05-04 13:07:33 +01:00
ncurses
ncurses: patch CVE-2025-6141
2025-07-30 07:47:48 -07:00
netbase
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
newlib
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
os-release
os-release: add os-release-initrd package
2022-04-05 22:23:40 +01:00
ovmf
Revert "ovmf: Fix CVE-2023-45236"
2025-02-28 06:51:35 -08:00
packagegroups
packagegroup-self-hosted: update for strace
2022-08-28 07:51:30 +01:00
psplash
psplash: consider the situation of psplash not exist for systemd
2022-12-13 15:23:34 +00:00
readline
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
seatd
seatd: Disable overflow warning as error on ppc64/musl
2022-05-04 13:07:33 +01:00
sysfsutils
sysfsutils: fetch a supported fork from github
2023-07-21 06:27:34 -10:00
systemd
systemd: Fix manpage build after CVE-2025-4598
2025-08-22 07:07:19 -07:00
sysvinit
sysvinit-inittab/start_getty: Fix respawn too fast
2022-08-31 16:54:17 +01:00
udev
udev-extraconf: fix network.sh script did not configure hotplugged interfaces
2024-11-27 06:27:26 -08:00
update-rc.d
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
util-linux
util-linux: Add fix to isolate test fstab entries using CUSTOM_FSTAB
2025-05-28 08:46:32 -07:00
volatile-binds
volatile-binds: Change DefaultDependencies from false to no
2022-05-12 16:44:05 +01:00
zlib
zlib: fix CVE-2014-9485
2025-04-04 08:42:47 -07:00